← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
APT Group UPS Targets US Government with HT Flash Exploit
WHITE UPS AlienVault 2015-07-11 Modified: 2017-08-24
8
IOCs
LOW VOLUME
On July 8, 2015, Unit 42 used the AutoFocus Threat Intelligence service to locate and investigate activity consistent with a spear-phishing attack targeting the US Government. The attack exploited an Adobe Flash vulnerability that stems from the zero-day vulnerabilities exposed from this month’s Hacking Team data breach.
flashupshacking teamgifadobe flashaptapt3paloalto
Indicators of Compromise (8)
All FileHash-SHA256 URL hostname CVE
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA256 a2fe113cc13acac2bb79a375f692b8ba5cc2fa880272adc7ab0d01f839e877ff 2017-08-24
URL http://rpt.perrydale.com/en/show.swf 2017-08-24
URL http://report.perrydale.com/ema/show.swf 2017-08-24
hostname rpt.perrydale.com 2017-08-24
hostname report.perrydale.com 2017-08-24
CVE CVE-2015-5119 2017-08-24
URL http://report.perrydale.com/ema/b.gif 2017-08-24
URL http://rpt.perrydale.com/en/b.gif 2017-08-24
References (1)
↗ http://researchcenter.paloaltonetworks.com/2015/07/apt-group-ups-targets-us-government-with-hacking-team-flash-exploit/